Unnamed repository; edit this file 'description' to name the repository. https://git.kobert.dev/pm24.git/atom?h=v5.1 2018-04-20T16:58:29Z 2018-04-20T16:58:29Z Kees Cook keescook@chromium.org 2018-03-30T16:55:44Z urn:sha1:d5c3b17898993c3461fb3f0497f45098ffd72ac6 On the quest to remove all VLAs from the kernel[1], this avoids VLAs by just using the maximum allocation size (4 bytes) for stack arrays. All the VLAs in ecc were either 3 or 4 bytes (or a multiple), so just make it 4 bytes all the time. Initialization routines are adjusted to check that ndigits does not end up larger than the arrays. This includes a removal of the earlier attempt at this fix from commit a963834b4742 ("crypto/ecc: Remove stack VLA usage") [1] https://lkml.org/lkml/2018/3/7/621 Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10T04:04:35Z Tudor-Dan Ambarus tudor.ambarus@microchip.com 2017-05-30T14:52:48Z urn:sha1:6755fd269d5c100b0eca420db501ae58435efd6e Add support for generating ecc private keys. Generation of ecc private keys is helpful in a user-space to kernel ecdh offload because the keys are not revealed to user-space. Private key generation is also helpful to implement forward secrecy. If the user provides a NULL ecc private key, the kernel will generate it and further use it for ecdh. Move ecdh's object files below drbg's. drbg must be present in the kernel at the time of calling. Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Reviewed-by: Stephan Müller <smueller@chronox.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10T04:04:26Z Tudor-Dan Ambarus tudor.ambarus@microchip.com 2017-05-30T12:37:56Z urn:sha1:7380c56d2fcaa882a0809aad075c3f9fdc3b3c50 Rename ecdh_make_pub_key() to ecc_make_pub_key(). ecdh_make_pub_key() is not dh specific and the reference to dh is wrong. Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10T04:04:26Z Tudor-Dan Ambarus tudor.ambarus@microchip.com 2017-05-25T07:18:05Z urn:sha1:ad269597107e6dde4810987eebbd075778d0262c ecc software implementation works with chunks of u64 data. There were some unnecessary casts to u8 and then back to u64 for the ecc keys. This patch removes the unnecessary casts. Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10T04:04:25Z Tudor-Dan Ambarus tudor.ambarus@microchip.com 2017-05-25T07:18:04Z urn:sha1:099054d735a5e4cfc8e90b03b7422c9b48209d8b Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10T04:04:25Z Tudor-Dan Ambarus tudor.ambarus@microchip.com 2017-05-25T07:18:03Z urn:sha1:c0ca1215dc92ee6a0f975c95a92fb7f9fb31e9e1 While here, add missing argument description (ndigits). Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-06-24T13:24:59Z Stephen Rothwell sfr@canb.auug.org.au 2016-06-24T06:20:22Z urn:sha1:8f44df154de79a61b0e86734f51737b8cccf8dfe There is another ecdh_shared_secret in net/bluetooth/ecc.c Fixes: 3c4b23901a0c ("crypto: ecdh - Add ECDH software support") Signed-off-by: Stephen Rothwell <sfr@canb.auug.org.au> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2016-06-23T10:29:57Z Salvatore Benedetto salvatore.benedetto@intel.com 2016-06-22T16:49:15Z urn:sha1:3c4b23901a0c766879dff680cd6bdab47bcdbbd2 * Implement ECDH under kpp API * Provide ECC software support for curve P-192 and P-256. * Add kpp test for ECDH with data generated by OpenSSL Signed-off-by: Salvatore Benedetto <salvatore.benedetto@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>